Page MenuHomePhabricator
Create Task
Maniphest T168699

Verify that the codfw lvs is configured correctly for Phabricator
Closed, ResolvedPublic
Actions

Description

@Dzahn and I did some testing a couple of weeks ago with the intention of unblocking the move of phabricator to codfw so that iridium can be decommissioned.

The plan was to migrate phabricator production from iridium.eqiad.wmnet -> phab2001.codfw.wmnet -> phab1001.eqiad.wmnet. At the end we will have codfw running as a warm backup and we will have documented and validated procedures for migrating and recovering from any serious outage in eqiad.

Unfortunately we almost immediately ran into problems around traffic routing via lvs in codfw.

Phabricator runs two separate ssh services, one is internal for administration and it's connected to the machine's primary ip. The second interface is set up for lvs on git-ssh.wikimedia.org.

Need to investigate further to see which parts of the balancer / lvs misc cluster are missing.

So far, it looks like we need to:

Revisions and Commits

rOPUP Wikimedia Puppet
rOPUPf019fcf51d5c LVS/phabricator: add git-ssh in codfw
rOPUP7e2e9e1cb8b6 LVS/phabricator: add git-ssh in codfw

Related Objects
Search...

StatusSubtypeAssignedTask
 Resolved mmodellT182832 Apache on phab1001 is gradually leaking worker processes which are stuck in "Gracefully finishing" state
 ResolvedPaladoxT125357 /maniphest/report/project/ : Maximum execution time of 10 seconds exceeded
 ResolvedDzahnT151070 Move Phabricator from PHP 7.0 to PHP 7.2
 ResolvedDzahnT238956 switch prod Phabricator from phab1003 to phab1001
 ResolvedDzahnT190568 Reimage both phab1001 and phab2001 to stretch / buster
 ResolvedJoeT154658 Prepare and improve the datacenter switchover procedure
 ResolvedLSobanskiT156937 Provide cross-dc redundancy (active-active or active-passive) to all important misc services
 InvalidNoneT164810 Switch phabricator production to codfw
 Resolved mmodellT152129 reinstall iridium (phabricator) as phab1001 with jessie
 Resolved mmodellT137928 Deploy phabricator to phab2001.codfw.wmnet
 ResolvedRobHT137838 setup phab2001.codfw.wmnet (WMF6405)
 ResolvedMoritzMuehlenhoffT138689 upload php-mailparse and python-phabricator to jessie
 ResolvedDzahnT143363 networking: allow ssh between iridium and phab2001
 InvalidNoneT143370 build php5-mailparse for jessie?
 DeclinedDzahnT152132 Setup test domain for phab2001
 Resolved mmodellT168699 Verify that the codfw lvs is configured correctly for Phabricator
 DeclinedNoneT112776 Implement phabricator database clustering support
 Resolved mmodellT128009 Next Phabricator Upgrade | 2016-04-28
 Resolved mmodellT190572 Prepare a disaster recovery plan for failing over Phabricator
 Declined mmodellT232883 Make PHD run on the backup phabricator server (phab2001, currently)

Event Timeline

mmodell created this task.Jun 23 2017, 4:22 AM
mmodell added a parent task: T137928: Deploy phabricator to phab2001.codfw.wmnet.
Paladox subscribed.Jun 23 2017, 8:03 AM
mmodell moved this task from Backlog to In-progress on the Release-Engineering-Team (Kanban) board.Jun 26 2017, 4:07 PM
ema moved this task from Backlog to LoadBalancer on the Traffic board.Jul 3 2017, 3:18 PM
mmodell added a commit: rOPUP7e2e9e1cb8b6: LVS/phabricator: add git-ssh in codfw.Jul 5 2017, 4:47 PM

Need to merge https://gerrit.wikimedia.org/r/#/c/355869/

mmodell moved this task from In-progress to Blocked (externally) on the Release-Engineering-Team (Kanban) board.Jul 10 2017, 4:23 PM
mmodell added a comment.Jul 17 2017, 4:43 PM

Still waiting on merge of https://gerrit.wikimedia.org/r/#/c/355869/

mmodell removed a parent task: T163938: setup/install phab1001.eqiad.wmnet.Jul 31 2017, 6:43 PM
mmodell added a comment.Aug 7 2017, 4:46 PM

phab2001 web works, git-ssh still unknown.

mmodell added a parent task: T164810: Switch phabricator production to codfw.Aug 8 2017, 12:56 AM
mmodell added a commit: rOPUPf019fcf51d5c: LVS/phabricator: add git-ssh in codfw.Nov 7 2017, 10:17 PM

https://gerrit.wikimedia.org/r/#/c/389871/

mmodell closed this task as Resolved.Nov 9 2017, 1:38 AM
Phabricator_maintenance edited projects, added RelEng-Archive-FY201718-Q2; removed Release-Engineering-Team (Kanban).Dec 21 2017, 6:56 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL